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IN THE CLAIMS 

1. (currently amended) An information processing 

apparatus for carrying out secure transmission of content to 
another apparatus over a network, said information processing 
apparatus compr i s ing : 

an encryption unit operable to encrypt the content ; 

an authentication unit operable to receive 
authentication information from the another apparatus when 
the another apparatus requests permission to receive the 
encrypted content, and to determine whether the 
authentication information is valid; 

a first obtaining unit operable to obtain 
identification information of the another apparatus from 
the authentication information when the authentication 
information is valid and to determine whether the 
identification information of the another apparatus is 
already stored in a storage unit; 

a transmitting unit operable to transmit a decryption 
key needed to decrypt the encrypted content to the another 
apparatus when the authentication information is valid and 
a count of a total number of apparatuses having permission 
to receive the encrypted content is less than a maximum 

value-; fehe — decryption — key — being — needed — to — decrypt — the 

encrypted content ; and 

a first counting unit operable to increment by one the 
count of the total number of apparatuses having permission 
to receive the encrypted content when the identification 
information of the another apparatus is not already stored 
in said storage unit and the count of the total number of 
apparatuses having permission to receive the encrypted 
content is less than the maximum value; 

said storage unit being operable to store the 
identification information of the another apparatus when 
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the identification information of the another apparatus is 
not already stored in said storage unit ; and 

an information updating unit operable to delete the 
identification information stored in said storage unit and 
to reset the count of the total number of apparatuses 
having permission to receive the encrypted content when the 
decryption key needed to decrypt the encrypted content is 
changed . 

2. (previously presented) An information processing 
apparatus according to Claim 1, wherein the another apparatus is 
operable to transmit the encrypted content to a plurality of 
further apparatuses over the network, and said information 
processing apparatus further comprises: 

a second obtaining unit operable to obtain a first 
value and a second value from the another apparatus when 
the authentication information is valid, the first value 
being a number of apparatuses in the plurality of further 
apparatuses that are newly requesting permission to receive 
the encrypted content, and the second value being a total 
number of apparatuses in the plurality of further 
apparatuses; and 

a second counting unit operable to increment the count 
of the total number of apparatuses having permission to 
receive the encrypted content by the first value when 

(i) the sum of the first value and the count of the total 
number of apparatuses having permission to receive the 
encrypted content is at most equal to the maximum value and 

(ii) the identification information of the another 
apparatus is already stored in said storage unit, 

said second counting unit being operable to increment 
the count of the total number of apparatuses having 
permission to receive the encrypted content to receive the 
encrypted content by the second value when (i) the sum of 
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the second value and the count of the total number of 
apparatuses having permission to receive the encrypted 
content is at most equal to the maximum value and (ii) the 
identification information of the another apparatus is not 
already stored in said storage unit. 

3 . (cancelled) 

4. (currently amended) A method for carrying out secure 
transmission of content from an information processing apparatus 
to another apparatus over a network, said method comprising: 

encrypting the content; 

receiving authentication information from the another 
apparatus when the another apparatus requests permission to 
receive the encrypted content; 

determining whether the authentication information is 
valid; 

obtaining identification information of the another 
apparatus from the authentication information when the 
authentication information is valid; 

determining whether the identification information of 
the another apparatus is already stored; 

transmitting a decryption key needed to decrypt the 
encrypted content to the another apparatus when the 
authentication information is valid and a count of a total 
number of apparatuses having permission to receive the 

encrypted content is less than a maximum value-? the 

decryption key being needed fee decrypt the encrypted 

content ; 

incrementing by one the count of the total number of 
apparatuses having permission to receive the encrypted 
content when the identification information of the another 
apparatus is not already stored and the count of the total 
number of apparatuses having permission to receive the 
encrypted content is less than the maximum value; and 
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storing the identification information of the another 
apparatus when the identification information of the 
another apparatus is not already stored ; and 

deleting the stored identification information and 
resetting the count of the total number of apparatuses 
having permission to receive the encrypted content when the 
decryption key needed to decrypt the encrypted content is 
changed . 

5. (currently amended) A computer- readable medium having 
recorded thereon computer program instructions for executing a 
method for carrying out secure transmission of content from an 
information processing apparatus to another apparatus over a 
network, said method comprising: 
encrypting the content; 

receiving authentication information from the another 
apparatus when the another apparatus requests permission to 
receive the encrypted content ; 

determining whether the authentication information is 
valid; 

obtaining identification information of the another 
apparatus from the authentication information when the 
authentication information is valid; 

determining whether the identification information of 
the another apparatus is already stored; 

transmitting a decryption key needed to decrypt the 
encrypted content to the another apparatus when the 
authentication information is valid and a count of a total 
number of apparatuses having permission to receive the 

encrypted content is less than a maximum value- fefee 

decryption key being needed fee decrypt the encrypted 

content ; 

incrementing by one the count of the total number of 
apparatuses having permission to receive the encrypted 
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content when the identification information of the another 
apparatus is not already stored and the count of the total 
number of apparatuses having permission to receive the 
encrypted content is less than the maximum value; and 

storing the identification information of the another 
apparatus when the identification information of the 
another apparatus is not already store d; and 

deleting the stored identification information and 

resetting the count o f the total number of apparatuses 
having permission to rec eive the encrypted content when the 
decryption key needed to decrypt the encrypted content is 
changed . 

6. (currently amended) An information processing 

apparatus for carrying out secure receiving of content from a 
first apparatus over a first network connection and for carrying 
out secure transmission of the content to a second apparatus 
over a second network connection, said information processing 
apparatus comprising: 

a first transmitting unit operable to transmit to the 
first apparatus a request for permission to receive the 
content ; 

a first authentication unit operable to perform a 
first authentication procedure with the first apparatus; 

a receiver operable to receive a first decryption key 
needed to decrypt the encrypted content from the first 
apparatus when the first authentication procedure is 
successful; 

a decryption unit operable to use the first decryption 
key to decrypt encrypted content received from the first 
apparatus ; 

a reencryption unit operable to reencrypt the 
decrypted content; 



6 



Application No.: 09/900,584 



Docket No.: SONYJP 3.0-187 



a second authentication unit operable to receive 
authentication information from the second apparatus when a 
request for permission to receive the content is made from 
the second apparatus and to determine whether the 
authentication information is valid; 

a first obtaining unit operable to obtain 
identification information of the second apparatus from the 
authentication information when the authentication 
information is valid and to determine whether the 
identification information of the second apparatus is 
already stored in a storage unit; 

a second transmitting unit operable to transmit a 
second decryption key needed to decrypt the reencrypted 

content to the second apparatus when the authentication 

information is valid and a count of a total number of 
apparatuses having permission to receive the reencrypted 
content is less than a maximum value-? — the second decryption 
key being needed to decrypt the reencrypted content ; and 

a first counting unit operable to increment by one the 
count of the number of apparatuses having permission to 
receive the reencrypted content when the identification 
information of the second apparatus is not already stored 
in said storage unit and the count of the total number of 
apparatuses having permission to receive the reencrypted 
content is less than the maximum value; 

said storage unit being operable to store the 
identification information of said second apparatus when 
the identification information of the second apparatus is 
not already stored in said storage unit ; and 

an information updating unit operable to delete the 
identif ication information stored in said storage unit and 

^2 reset t he count of the number of apparatuses having 

permiss ion to receive the reencrypted content when the 
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second decryption key needed to decrypt the reencrypted 
content is changed . 

7. (cancelled) 

8. (previously presented) An information processing 
apparatus according to Claim 6, further comprising: 

a third transmitting unit operable to transmit, to the 
first apparatus, the count of the number of apparatuses 
having permission to receive the content. 

9. (cancelled) 

10. (currently amended) A method for carrying out secure 
receiving of content from a first apparatus over a first network 
connection and for carrying out secure transmission of the 
content to a second apparatus over a second network connection, 
said method comprising: 

transmitting to the first apparatus a request for 
permission to receive the content; 

performing a first authentication procedure with the 
first apparatus ; 

receiving a first decryption key needed to decrypt the 
encrypted content from the first apparatus when the first 
authentication procedure is successful; 

decrypting, using the first decryption key, encrypted 
content received from the first apparatus; 

reencrypting the decrypted content ; 

receiving authentication information from the second 
apparatus when a request for permission to receive the 
content is made from the second apparatus ,- 

determining whether the authentication information is 
valid; 

obtaining identification information of the second 
apparatus from the authentication information when the 
authentication information is valid ; 
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determining whether the identification information of 
the second apparatus is already stored; 

transmitting a second decryption key needed to decrypt 
the reencrypted content to the second apparatus when the 
authentication information is valid and a count of a total 
number of apparatuses having permission to receive the 

reencrypted content is less than a maximum value-; fc-he 

second decryption key being needed fee decrypt t**e 

reencrypted content ; 

incrementing by one the count of the number of 
apparatuses having permission to receive the reencrypted 
content when the identification information of the second 
apparatus is not already stored in said storage unit and 
the count of the total number of apparatuses having 
permission to receive the reencrypted content is less than 
the maximum value ; 

storing the identification information of the second 
apparatus when the identification information of the second 
apparatus is not already stored ; and 

deleting the identification information stored in said 
storage unit and resetting the count of the number of 
apparatuses having permission to receive the reencrypted 
content when the second decryption key needed to decrypt 
the reencrypted content is changed . 

11. (currently amended) A computer- readable medium having 
recorded thereon computer program instructions for executing a 
method for carrying out secure receiving of content from a first 
apparatus over a first network connection and for carrying out 
secure transmission of the content to a second apparatus over a 
second network connection, said method comprising: 

transmitting to the first apparatus a request for 

permission to receive the content; 
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performing a first authentication procedure with the 
first apparatus; 

receiving a first decryption key needed to decrypt the 
encrypted content from the first apparatus when the first 
authentication procedure is successful; 

decrypting, using the first decryption key, encrypted 
content received from the first apparatus ; 

reencrypting the decrypted content; 

receiving authentication information from the second 
apparatus when a request for permission to receive the 
content is made from the second apparatus; 

determining whether the authentication information is 
valid; 

obtaining identification information of the second 
apparatus from the authentication information when the 
authentication information is valid ; 

determining whether the identification information of 
the second apparatus is already stored; 

transmitting a second decryption key needed to decrypt 
the reencrypted content to the second apparatus when the 
authentication information is valid and a count of a total 
number of apparatuses having permission to receive the 

reencrypted content is less than a maximum value-? t h e 

second decryption key being needed fee decrypt the 

reencrypted content ; 

incrementing by one the count of the number of 
apparatuses having permission to receive the reencrypted 
content when the identification information of the second 
apparatus is not already stored in said storage unit and 
the count of the total number of apparatuses having 
permission to receive the reencrypted content is less than 
the maximum value; 
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storing the identification information of the second 
apparatus when the identification information of the second 
apparatus is not already stored ; and 

deleting the identification information stored in said 
storage unit and resetting the count of the number of 
apparatuses having permission to receive the reencrypted 
content when the second decryption key needed to decrypt 
the reencrypted content is changed . 

12. (previously presented) An information processing 
apparatus according to Claim 1, wherein the authentication 
information includes first authentication information and second 
authentication information, and said authentication unit 
includes : 

a first authentication subunit operable to receive the 
first authentication information from the another apparatus 
when the another apparatus requests permission to receive 
the encrypted content, and to determine whether the first 
authentication information is valid; and 

a second authentication subunit operable to transmit a 
request for the second authentication information to the 
another apparatus when the first authentication information 
is valid, to receive the second authentication information 
from the another apparatus, and to determine whether the 
second authentication information is valid; 

said transmitting unit being operable to transmit the 
decryption key to the another apparatus when the second 
authentication information is valid and the count of the 
total number of apparatuses having permission to receive 
the encrypted content is less than the maximum value. 

13 . (previously presented) An information processing 
apparatus according to Claim 6, wherein the authentication 
information includes first authentication information and second 
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authentication information, and said second authentication unit 
includes : 

a first authentication subunit operable to receive the 
first authentication information from the second apparatus 
when the second apparatus requests permission to receive 
the content, and to determine whether the first 
authentication information is valid; and 

a second authentication subunit operable to transmit a 
request for the second authentication information to the 
second apparatus when the first authentication information 
is valid, to receive the second authentication information 
from the second apparatus, and to determine whether the 
second authentication information is valid; 

said second transmitting unit being operable to 
transmit the second decryption key to the second apparatus 
when the second authentication information is valid and the 
count of the total number of apparatuses having permission 
to receive the reencrypted content is less than the maximum 
value . 

14. (previously presented) A method according to 
claim 4 7 wherein the another apparatus is operable to transmit 
the encrypted content to a plurality of further apparatuses over 
the network, and said method further comprises: 

obtaining a first value and a second value from the 
another apparatus when the authentication information is 
valid, the first value being a number of apparatuses in the 
plurality of further apparatuses that are newly requesting 
permission to receive the encrypted content, and the second 
value being a total number of apparatuses in the plurality 
of further apparatuses ; 

incrementing the count of the total number of 
apparatuses having permission to receive the encrypted 
content by the first value when (i) the sum of the first 
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value and the count of the total number of apparatuses 
having permission to receive the encrypted content is at 
most equal to the maximum value and (ii) the identification 
information of the another apparatus is already stored in 
said storage unit; and 

incrementing the count of the total number of 
apparatuses having permission to receive the encrypted 
content by the second value when (i) the sum of the second 
value and the count of the total number of apparatuses 
having permission to receive the encrypted content is at 
most equal to the maximum value and (ii) the identification 
information of the another apparatus is not already stored 
in said storage unit. 

15. (previously presented) A computer- readable medium 
according to claim 5, wherein the another apparatus is operable 
to transmit the encrypted content to a plurality of further 
apparatuses over the network, and said method further comprises: 
obtaining a first value and a second value from the 
another apparatus when the authentication information is 
valid, the first value being a number of apparatuses in the 
plurality of further apparatuses that are newly requesting 
permission to receive the encrypted content, and the second 
value being a total number of apparatuses in the plurality 
of further apparatuses; 

incrementing the count of the total number of 
apparatuses having permission to receive the encrypted 
content by the first value when (i) the sum of the first 
value and the count of the total number of apparatuses 
having permission to receive the encrypted content is at 
most equal to the maximum value and (ii) the identification 
information of the another apparatus is already stored in 
said storage unit; and 
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incrementing the count of the total number of 
apparatuses having permission to receive the encrypted 
content by the second value when (i) the sum of the second 
value and the count of the total number of apparatuses 
having permission to receive the encrypted content is at 
most equal to the maximum value and (ii) the identification 
information of the another apparatus is not already stored 
in said storage unit. 
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